JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.154.57.103

165.154.57.103 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 80%: ?

80%

ISP	UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135377
Domain Name	ucloud.cn
Country	🇹🇼 Taiwan
City	Taipei, Taiwan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.154.57.103

Whois 165.154.57.103

IP Abuse Reports for 165.154.57.103:

This IP address has been reported a total of 21 times from 15 distinct sources. 165.154.57.103 was first reported on June 2nd 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Luhte	2026-06-03 07:57:17 (17 hours ago)	Unsolicited TCP connection from 165.154.57.103 to port 0 at 2026-06-03T07:57:17Z. Source IP complete ... show more Unsolicited TCP connection from 165.154.57.103 to port 0 at 2026-06-03T07:57:17Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
Anonymous	2026-06-03 07:52:43 (17 hours ago)	Trying ports that it shouldn't be.	Port Scan Hacking Exploited Host
🇩🇪 HoneyPot-FrPri	2026-06-03 07:49:38 (18 hours ago)	1780472977 - 06/03/2026 09:49:37 Host: 165.154.57.103/165.154.57.103 Port: 2323 TCP Blocked ...	Port Scan
🇺🇸 drewf.ink	2026-06-03 06:02:12 (19 hours ago)	[06:02] Port scanning. Port(s) scanned: TCP/3389	Port Scan
🇺🇸 ShadowWhisperer	2026-06-03 05:57:41 (19 hours ago)	RDP credential attempt.	Brute-Force Hacking
🇨🇦 Luhte	2026-06-03 05:41:33 (20 hours ago)	Unsolicited TCP connection from 165.154.57.103 to port 0 at 2026-06-03T05:41:33Z. Source IP complete ... show more Unsolicited TCP connection from 165.154.57.103 to port 0 at 2026-06-03T05:41:33Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇦🇹 begou.dev	2026-06-03 05:40:45 (20 hours ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/3389	Port Scan
🇫🇷 Coco Bongo	2026-06-03 05:31:20 (20 hours ago)	1780464680 - 06/03/2026 07:31:20 Host: 165.154.57.103/165.154.57.103 Port: 3389 TCP Blocked ...	Port Scan
🇵🇱 nfsec.pl	2026-06-03 05:31:04 (20 hours ago)	Detected: TCP scan on port: 3389 with flags: SYN	Port Scan
🇩🇪 femboy.cat	2026-06-03 05:08:20 (20 hours ago)	Port scan to tcp/3389 from 165.154.57.103	Brute-Force
🇺🇸 3rdKey	2026-06-03 05:00:03 (20 hours ago)	OpenCanary honeypot hit on port 3389 (no legitimate service runs there); logtype 14001. Automated re ... show more OpenCanary honeypot hit on port 3389 (no legitimate service runs there); logtype 14001. Automated report. show less	Port Scan Brute-Force Exploited Host
🇺🇸 drewf.ink	2026-06-03 04:59:14 (20 hours ago)	[04:59] Port scanning. Port(s) scanned: TCP/3389	Port Scan
🇳🇱 donarev419	2026-06-03 04:36:00 (21 hours ago)	Connection to port 3389 with data transfer. Data preview:	Port Scan Hacking
🇩🇪 Lazentis	2026-06-03 04:35:15 (21 hours ago)	Unauthorized access attempt to port 3389 (tcp)	Brute-Force SSH
🇬🇧 PeravixGroup	2026-06-03 04:30:50 (21 hours ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.216

🇩🇪 194.88.98.116

🇧🇷 177.55.227.195

🇸🇬 157.230.250.54

🇩🇪 142.250.154.101

🇩🇪 69.5.169.241

🇺🇸 66.132.224.16

🇺🇸 50.62.22.47

🇧🇷 45.238.101.91

🇬🇧 35.203.211.83

🇳🇱 195.178.110.199

🇳🇱 192.142.24.66

🇫🇷 178.238.229.119

🇺🇸 173.239.198.62

🇺🇸 91.230.168.37

🇫🇷 88.138.20.172

🇩🇪 69.5.169.195

🇩🇪 69.5.169.134

🇺🇸 66.132.172.16

🇳🇱 50.7.233.211